Sign in to follow this  
Followers 0
hookman

Nuclear banking trojan source code (new trusteer bypass)

8 posts in this topic

Posted (edited)

Hi I'm the developer of Nuclear bot and I am leaking my own code.

Here are some articles on the bot:

https://www.deepdotweb.com/2017/02/01/malware-uninstalls-another-hackers-malware-available-darknet/
https://exchange.xforce.ibmcloud.com/collection/Nuclear-Bot-NukeBot-aka-Micro-Banking-Trojan-8b18e7c897b6be1575ddebec42f1d456/report/ec76c6cc69b9c6c1fa81d9a77f62e6a3/MAL/f9cb4322e395aef43f86af76824a165e
https://www.cybersixgill.com/nuke-http-bot/
https://www.deepdotweb.com/2017/02/01/malware-uninstalls-another-hackers-malware-available-darknet/

Nuclear or TinyNuke is a full fledged banking trojan its main features are:

- Formgrabber and Webinjects for Firefox, Internet Explorer and Chrome. Can inject x86 as well as x64 browsers.
- Reverse SOCKS 4
- HVNC like Hidden Desktop
- Trusteer Bypass
- ~32kb binary with obfuscated strings ~20kb without

I posted the full project here: https://github.com/aainz/TinyNuke, enjoy and tell me what you think!

Edited by hookman
links
2 people like this

Share this post


Link to post
Share on other sites

Add me on jabber: aainz@exploit.im for any questions

Share this post


Link to post
Share on other sites

just remove the comma after the link. :P

1 person likes this

Share this post


Link to post
Share on other sites

Looks interesting, will try to test it when I have some free time. Thanks for sharing it.

Hidden desktop feature looks cool.

Share this post


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!


Register a new account

Sign in

Already have an account? Sign in here.


Sign In Now
Sign in to follow this  
Followers 0